VERT Threat Alert: April 2023 Patch Tuesday Analysis

Tripwire VERT

Today’s VERT Alert addresses Microsoft’s April 2023 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-1050 on Wednesday, April 12th. In-The-Wild & Disclosed CVEs CVE-2023-28252 A vulnerability in the Common Log File System (CLFS) Driver has been exploited in-the-wild. CLFS provides a general-purpose logging service to other software via the Microsoft Windows SDK. Successful exploitation of this vulnerability would lead to an attacker gaining SYSTEM access. Kaspersky has provided a detailed analysis of an attack that utilized this…

The post “VERT Threat Alert: April 2023 Patch Tuesday Analysis” appeared first on TripWire

Source:TripWire – Tyler Reguly